Change Security Certificate jZebra

  1. Open command prompt (Assumes Windows 7)
  2. Type:
    > cd %PROGRAMFILES%\Java\jdk1*\bin
  3. Type:
    > keytool -import -alias myalias -file %USERPROFILE%\Documents\mycert.cer -keystore %USERPROFILE%\Documents\mykeystore.ks
  4. Since the keystore doesn't yet exist, it will be created, and you will be prompted for a keystore password; type whatever password you want. This will later be entered into NetBeans. For the purposes of this tutorial we will use password of "randomaccess123".
  5. Copy mykeystore.ks to the root of your jZebra project folder (probably %USERPROFILE%\Documents\NetBeansProjects\jZebra)
  6. If not already, open NetBeans (Version 6.8+). Make sure Java Web Start is enabled in project properties.
  7. Navigate to Files in upper left (if hidden, CTRL + 2)
  8. Expand nbproject folder. Double click jnlp-impl.xml.
  9. Scroll to the section that says "<!-- Custom - Modified by Tres Finocchiaro 12/8/2010 -->" (Alternately, you can CTRL+F to search for "tres")
  10. Change <property name="jnlp.signjar.keystore" value="${basedir}/jzebra.ks"/> to <property name="jnlp.signjar.keystore" value="${basedir}/mykeystore.ks"/>
  11. Change <property name="jnlp.signjar.storepass" value="**********"/> to <property name="jnlp.signjar.storepass" value="randomaccess123"/>
  12. Change <property name="jnlp.signjar.keypass" value="**********"/> to <property name="jnlp.signjar.storepass" value="randomaccess123"/>
  13. Change <property name="jnlp.signjar.alias" value="jzebra"/> to <property name="jnlp.signjar.alias" value="myalias"/>
  14. Note #1: If prompted for two passwords, I'm not sure exactly which is which, since the tutorial only addresses one of them. This will need clarification.
  15. Note #2: Jarsigner.exe should not be called directly, as a version of it is included in javawebstart.anttasks.SignJarsTask (NetBeans uses it for Java Web Start, we are exploiting it's Jar Signing capabilities) 
  16. Note #3: Verification for clients: The keytool command will print out the certificate information and ask you to verify it, for example, by comparing the displayed certificate fingerprints with those obtained from another (trusted) source of information. For example, customers might call up MyCompany and ask what the fingerprints should be. You can get the fingerprints of the mycert.cer file by executing the command: > cd %PROGRAMFILES%\Java\jdk1*\bin
    > keytool -printcert -file %USERPROFILE%\Documents\mycert.cer
  17. Note #4: At some point Oracle made a change to the keytool command. It seems JDK 1.6.x uses "keytool -importcert" instead of JDK 1.5.x "keytool -import". The tutorial version should be backwards compatible. This will need clarification.

Comments

Post a Comment

Popular posts from this blog

iPod Touch iPhone 3G Ubuntu 9.10 in 5 minutes

Image
"Lucid (Ubuntu 10.04) has 'out of the box', zero-configuration support in Rhythmbox for the iPod touch running firmware 3.12/3.13. It does not require jailbreaking, though I have personally discovered it will work with both a "stock" and a jailbroken iPod touch." - Raffisson Studio Changes (skip this) : Mar 28, 2010: Added link to French tutorial in step 1. Mar 16, 2010: Added Amarok 2.3 notes pe r Gary Feb 23, 2010: Removed "-dev" packages and made some small changes per farfouille64 feedback. Feb 19, 2010: Bifster found a similar tutorial. Worth trying if you have issues. Here's the link: easy way to sync your iphone Feb 19, 2010: Step 11 added DFB 's RythmBox plugin suggestion. Confirmation working with firmware 3.1.3! Thanks DFB! Feb 15, 2010: Step 11 added AJ's unicode work-around. Thanks AJ! Feb 11, 2010: Step 10 modified to automatically add user to group "fuse". Thanks for the
Read more

Pidgin - Microsoft Office Communicator

Image
Update: 11/15/10 - Added ICONV.DLL, LIBXML2.DLL work-around for Windows. Update: 05/01/10 - SIPE 1.10 is out. Tutorial updated. Update: 01/27/10 - SIPE 1.7.1 is out. Download it here . Update: 08/20/09 - SIPE 1.6.0 seems to be available, so I've updated this article with some 1.6.0 comments in red below. Steps: Downloading and installing the latest Pidgin for your platform. - Windows: For first time users, the installer will require GTK to be installed. - Windows: Recommended: Install automatic spell-check (Aspell) for your language, which needs to be selected during install. (Requires a connection to the internet). Download and install the latest SIPE ( SI mple P rotocol E xchange) for your platform. - Windows: The plugin will come bundled as a zip file with a MSI installer. Run the MSI installer. This will install the plugin to "Program Files\Pidgin" - Linux: If a precompiled version (usually ".DEB" or ".RPM" is not ava
Read more

Netflix + Ubuntu

Image
This is not an article of success, but rather some information for those searching around. I guess you could say its a story of hope?! Here's an article outlining some of the "up-and-coming" strategies planned to get a technology called "Moonlight" -- which will eventually get protected video content playing on Linux -- up to par with the Windows equivalent. What does this mean? If the above article is correct, Ubuntu, Fedora, SuSE, etc will get "Watch Now" support in Netflix. But a technology known as "DRM" will have to be incorporated into the Linux version, and Microsoft needs to work further with Novell for that to happen. Summary: Netflix "Watch Now" WILL NOT load from Linux. (The Roku is an exception) But the future may look bright . Netlfix "Watch Now" uses a plugin called " Silverlight 2.0 " made by Microsoft. Moonlight 2.0 is the Linux equivalent of Silverlight. (Use Firefox to install) Although
Read more